Pouria Shahba

**Name of the Vulnerable Software and Affected Versions** PostX plugin for WordPress versions up to and including 5.0.8 **Description** The PostX plugin for WordPress is susceptible to Server-Side Request Forgery. This allows authenticated attackers with Administrator-level access or higher to make web requests to arbitrary locations from the web application. This can be used to query and modify information from internal services. The issue is present through the `/ultp/v3/starter dummy post/` and `/ultp/v3/starter import content/` API endpoints. The `ultp` parameter is involved in the vulnerability. **Recommendations** Update the PostX plugin to a version newer than 5.0.8.

**Name of the Vulnerable Software and Affected Versions** WP ULike versions prior to 4.8.3.1 **Description** The WP ULike plugin for WordPress is susceptible to an Insecure Direct Object Reference issue. The `wp ulike delete history api` AJAX action does not confirm ownership of the log entry before allowing deletion. This allows authenticated attackers with Subscriber-level access or higher, possessing the 'stats' capability, to delete arbitrary log entries belonging to other users by manipulating the `id` parameter. **Recommendations** Update WP ULike to version 4.8.3.1 or later.

**Name of the Vulnerable Software and Affected Versions** Image Photo Gallery Final Tiles Grid plugin for WordPress versions through 3.6.9 **Description** The software is susceptible to unauthorized access and modification of data because of absent capability checks on several AJAX actions. Authenticated attackers possessing Contributor-level access or higher can view, create, modify, clone, delete, and reassign ownership of galleries, even those created by administrators. The affected AJAX actions do not properly verify user permissions before allowing operations on gallery data. **Recommendations** Update the Image Photo Gallery Final Tiles Grid plugin to a version beyond 3.6.9.